Latest Braindump2go Microsoft 70-642 Exam Dumps Free Download (51-60)

Do you want to pass Microsoft 70-642 Exam ? If you answered YES, then look no further. Braindump2go offers you the best 70-642 exam questions which cover all core test topics and certification requirements. All REAL questions and answers from Microsoft Exam Center will help you be a 70-642 certified!

QUESTION 51 Your company has a single Active Directory domain named contoso.com. All servers run Windows Server 2008. You have a public DNS server named Server1, and an e-mail server named Server2. Client computers outside the company domain are unable to send e-mail messages to contoso.com You verify that the host (A) DNS record for Server2 is availible to external client computers. You need to ensure Server2 can receive e-mail messages from external client computers. How should you configure the contoso.com DNS zone?

A. Add a Mail Exchange (MX) record for Server2 B. Add a Mailbox (MB) record for Server2. Set the Mailbox Host setting to Server2 C. Add a Canonical (CNAME) record that maps Server2 to contoso.com D. Add a Service Locator (SRV) record for Server2. Set the Service field to _smtp. Set the Protocol field to _tcp. Set the Port Number to 25.

Answer: A

QUESTION 52 Your company has a domain controller that runs Windows Server 2008 and the DNS role. The DNS domain is named contoso.com You need to ensure that inquries about contoso.com are sent to dnsadmin@contoso.com What should you do?

A. Create a signature (SIG) record for the domain controller B. Modify the Name Server (NS) record for the domain controller C. Modify the Service Locator (SRV) record for the domain controller D. Modify the Start of Authority (SOA) record ont he domain controller

Answer: D

QUESTION 53 Your company has servers that run Windows Server 2008. All client computers run Windows XP Service Pack 2 (SP2). Windows 2003 Professional, or Windows Vista. You need to ensure all computers can use the IPv6 protocol. What should you do?

A. Install Serivce Pack 4 on all Windows 2000 Professional computers B. Upgrade the Windows 2000 professional computers to Windows XP SP2 C. Run the IPv6.exe tool on the Windows 200 Professional and Windows XP computers D. Install Active Directory Client extention (DSClient.exe) on the Windows 2000 Professional and Windows XP computers.

Answer: B

QUESTION 54 Your company has a single Active Directory domain. All servers run Windows Server 2008. The company network has servers that perform as Web Servers. All confidential files are located on a server named FSS1. The company security policy states that all confidential data must be transmitted in the most secure manner. When you monitor the network you notice that the confidential files stored on FSS1 server are being transmitted over the network without encryption. You need to ensure that encryption is always used when the confidential files on the FSS1 server are transmitted over the network. What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two.)

A. Deactivate all LM and NTLM authentication methods on FSS1 server B. Use IIS to publish the confidential files, activate SSL on the IIS server, and then open the files as a web folder C. Use IPsec encryption between the FSS1 server and the computers of the users who need to access the confidential files. D. Use the Server Message Block (SMB) signing between the FSS1 server and the computers of the users who want to access the confidential files. E. Activate offline files for the confidential files that are stored on the FSS1 server. In the Folder Advanced Properties box, select the Encrypt contents to secure data optiion

Answer: BC

QUESTION 55 Your company has an Active Directory domain. A server named Server1 runs the Network Access Policy server role. You need to disable IPv6 for all connections except for the tunnel interface and the IPv6 Loopback interface. What should you do?

A. Run the netsh ras ipv6 set command B. Run the netsh interface ipv6 delete command C. Run ipv6.exe and remove the IPv6 Protocol D. From the Local Area Connection Properties, uncheck Internet Protocol Version 6 (TCP/IPv6)

Answer: D

QUESTION 56 Your company has a single Active Directory domain. The domain runs at the functional level of Windows Server 2003. You install the DHCP service on a server named DHCP1. You attempt to start the DHCP service, but it does not start. You need to ensure that the DHCP service starts. What should you do?

QUESTION 57 You configure a new file server that runs Windows Server 2008. Users access shared files on the file server. Users report that they are unable to access the shared files. The TCP/IP properties for the file server are configured as shown in the following exhibit. You need to ensure that users are able to access the shared files. How should you configure the TCP/IP properties in the file server?

QUESTION 58 Your company has Active Directory Certificate Services (AD CS) and Network Access Protection (NAP) deployed on the network. You need to configure the wireless network to accept smart cards. What should you do?

A. Configure the wireless network to use WPA2, PEAP, and MSCHAP v2 B. Configure the wireless network to use WPA2, 802.1X authentication and EAP-TLS C. Configure the wireless network to use WEP, 802.1X authentication, PEAP, and MSCHAP v2 D. Configure the wireless network to use WPA, PEAP, and MSCHAP v2 and also require strong user passwords.

Answer: B

QUESTION 59 Your company has users who connect remotely to the main office though a Windows Server 2008 VPN server. You need to ensure that users cannot access the VPN server remotely from 22:00 to 05:00. What should you do?

A. Create a network policy for VPN connections. modify the Day and time restrictions. B. Create a network policy for VPN connections. apply an ip filter to deny access to the corporate network. C. Modify the Logon hours for all users objects to specify only the VPN server otn he computer restrictions option D. Modify the Logon hours for the default domain policy to enable the Force logoff when logon hours expire option,.

Answer: A

QUESTION 60 You have a server that runs Windows Server 2008. You need to configure the server as a VPN server. What should you installed on the server?

A. Windows Deployment Serivces role and Deployment Server role service B. Windows Deployment Services role and Deployment Transport Role Service C. Network Policy and Access Services role and Routing and Remote Access Services role service. D. Network Policy and Access Services role and Routing and Host Credential Authorization Protocolr ole service.